-
Notifications
You must be signed in to change notification settings - Fork 58
/
Copy pathdocker-compose.yml
108 lines (98 loc) · 2.98 KB
/
docker-compose.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
version: '2.1'
volumes:
redis-data: {}
openvas-var-lib: {}
gvm-var-lib: {}
postgres-data: {}
run-redis: {}
run-ospd: {}
run-gvm: {}
mosquitto-data: {}
mosquitto-log: {}
services:
gvm-postgres:
image: ${GVM_POSTGRES_IMAGE_NAME:-admirito/gvm-postgres}:${GVM_POSTGRES_IMAGE_TAG:-latest}
environment:
PGDATA: /var/lib/postgresql/data
POSTGRES_DB: gvmd
POSTGRES_PASSWORD: mypassword
POSTGRES_USER: gvmduser
volumes:
- postgres-data:/var/lib/postgresql/data
gvmd:
# CONNECTED /run/ospd/ospd-openvas.sock
image: ${GVMD_IMAGE_NAME:-admirito/gvmd}:${GVMD_IMAGE_TAG:-latest}
environment:
GVMD_POSTGRESQL_URI: postgresql://gvmduser:mypassword@gvm-postgres:5432/gvmd?application_name=gvmd
# see https://marlam.de/msmtp/ for possible configuration options for the default system account
# the MSMTP_ prefix is stripped and keys are used as lowercased configuration variable names
# MSMTP_HOST: smtp.example.com
# MSMTP_PORT: 25
# MSMTP_LOGFILE: "-"
# MSMTP_TLS: on
# MSMTP_TLS_STARTTLS: on
# MSMTP_AUTH: on
# MSMTP_USER: username
# MSMTP_PASSWORD: password
volumes:
- openvas-var-lib:/var/lib/openvas
- gvm-var-lib:/var/lib/gvm
- run-redis:/run/redis
- run-ospd:/run/ospd
- run-gvm:/run/gvm
depends_on:
gvm-postgres:
condition: service_started
gsad:
image: ${GSAD_IMAGE_NAME:-admirito/gsad}:${GSAD_IMAGE_TAG:-latest}
volumes:
- run-gvm:/run/gvm
ports:
- 8080:80
environment:
GVMD_HOST: gvmd
GVMD_PORT: '9390'
depends_on:
gvmd:
condition: service_started
openvas:
# LISTENING /run/ospd/ospd-openvas.sock
# CONNECTED /run/redis/redis.sock
image: ${OPENVAS_SCANNER_IMAGE_NAME:-admirito/openvas-scanner}:${OPENVAS_SCANNER_IMAGE_TAG:-latest}
privileged: true
sysctls:
net.core.somaxconn: '2048'
volumes:
- openvas-var-lib:/var/lib/openvas
- run-redis:/run/redis
- run-ospd:/run/ospd
environment:
MQTT_BROKER_ADDRESS: mosquitto
MQTT_BROKER_PORT: 1883
depends_on:
gvm-postgres:
condition: service_started
redis:
condition: service_started
mosquitto:
condition: service_started
# It is recommended to add vm.overcommit_memory=1 into
# /etc/systcl.conf on the host
redis:
# LISTENING /run/redis/redis.sock
image: ${REDIS_IMAGE_NAME:-redis}:${REDIS_IMAGE_TAG:-6.0}
volumes:
- run-redis:/run/redis
- redis-data:/data
command: redis-server --port 0 --unixsocket /run/redis/redis.sock --unixsocketperm 755 --databases 1025
privileged: true
sysctls:
net.core.somaxconn: '2048'
mosquitto:
image: ${ECLIPSE_MOSQUITTO_IMAGE_NAME:-eclipse-mosquitto}:${ECLIPSE_MOSQUITTO_IMAGE_TAG:-2.0}
command: mosquitto -c /mosquitto-no-auth.conf
volumes:
- mosquitto-data:/mosquitto/data
- mosquitto-log:/mosquitto/log
ports:
- 1883